Use PE_BADCREDENTIALS instead of 403 (#707)

c4b27b9c · Yadd · 6943c49c · c4b27b9c
Commit c4b27b9c authored Apr 05, 2017 by Yadd
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 4 deletions

lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/Kerberos.pm lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/Kerberos.pm +4 -4

No files found.
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/Kerberos.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/Kerberos.pm
@@ -5,6 +5,7 @@ use Mouse;
 use GSSAPI;
 use MIME::Base64;
 use Lemonldap::NG::Portal::Main::Constants qw(
+  PE_BADCREDENTIALS
  PE_ERROR
  PE_OK
  PE_SENDRESPONSE
@@ -26,7 +27,7 @@ sub extractFormInfo {
    unless ($auth) {
        $req->response(
            [
-                410,
+                401,
                [ 'WWW-Authenticate' => 'Negotiate' ],
                ['Authentication required']
            ]
@@ -35,14 +36,13 @@ sub extractFormInfo {
    }
    if ( $auth !~ /^Negotiate (.*)$/ ) {
        $self->userLogger->error('Bad authorization header');
-        $req->response( [ 403, [], ['Forbidden'] ] );
-        return PE_SENDRESPONSE;
+        return PE_BADCREDENTIALS;
    }
    my $data;
    eval { $data = MIME::Base64::decode($1) };
    if ($@) {
        $self->userLogger->error( 'Bad authorization header: ' . $@ );
-        return PE_ERROR;
+        return PE_BADCREDENTIALS;
    }
    my $server_context;
    my $status = GSSAPI::Context::accept(